Search for packages
| purl | pkg:deb/debian/gnutls28@3.7.1-5%2Bdeb11u5?distro=trixie |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-1xj6-a5qz-nyhx | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to Denial of Service. |
CVE-2013-1619
|
| VCID-286x-avqh-73cx | gnutls: gnutls: Remote Denial of Service via crafted ClientHello with invalid PSK binder |
CVE-2026-1584
GNUTLS-SA-2026-02-09-1 |
| VCID-334s-gdq8-jucy | security update |
CVE-2015-6251
|
| VCID-3c48-skyt-43a7 | Multiple vulnerabilities have been found in GnuTLS, allowing a remote attacker to perform man-in-the-middle or Denial of Service attacks. |
CVE-2012-1573
|
| VCID-3qcs-1fcj-m3fw | gnutls: DTLS client hello contains a random value of all zeroes |
CVE-2020-11501
GNUTLS-SA-2020-03-31 |
| VCID-4f3z-x697-abd5 | gnutls: Out-of-bounds write related to the cdk_pkt_read function (GNUTLS-SA-2017-3) |
CVE-2017-7869
|
| VCID-4ywm-88f3-vqbq | gnutls: double-free vulnerability in libgnutls 3.0.x |
CVE-2012-1663
|
| VCID-5aea-cjz1-jkh1 | gnutls: Environment variable GNUTLS_KEYLOGFILE is obtained via insecure getenv() |
CVE-2016-4456
|
| VCID-5b5j-s52a-7bda | incorrect certificate verification |
CVE-2014-0092
|
| VCID-6fzu-8998-abdk | An information disclosure vulnerability in GnuTLS allow remote attackers to obtain sensitive information. |
CVE-2020-13777
GNUTLS-SA-2020-06-03 |
| VCID-6u4f-wt5u-8ueb | gnutls: Incorrect certificate validation when using OCSP responses (GNUTLS-SA-2016-3) |
CVE-2016-7444
|
| VCID-6ya9-m3gf-wugy | security update |
CVE-2015-0282
|
| VCID-86j1-j381-cucy | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2022-2509
GNUTLS-SA-2022-07-07 |
| VCID-92x9-x1ep-cqdn | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2024-28834
GNUTLS-SA-2023-12-04 |
| VCID-9pdw-udwq-6kbz | gnutls: Stack-based Buffer Overflow in gnutls_pkcs11_token_init() Function |
CVE-2025-9820
GNUTLS-SA-2025-11-18 |
| VCID-a18u-4j99-nbf8 | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2024-0553
|
| VCID-a296-a2f2-kfba | Multiple vulnerabilities have been found in GnuTLS, the worst of which could result in a Denial of Service condition. |
CVE-2019-3829
|
| VCID-abn3-2b4q-z7ga | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2023-5981
|
| VCID-b1m6-r1bv-d7gr | Multiple vulnerabilities have been found in PolarSSL, the worst of which might allow a remote attacker to cause a Denial of Service condition. |
CVE-2013-0169
|
| VCID-e5gr-ykye-9qb7 | gnutls: dane_query_tlsa() buffer overflow (GNUTLS-SA-2013-3) |
CVE-2013-4466
|
| VCID-egeh-jk4m-sba8 | Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. |
CVE-2017-5337
|
| VCID-f5c7-jcd9-67hj | gnutls: GnuTLS: Denial of Service via excessive resource consumption during certificate verification |
CVE-2025-14831
GNUTLS-SA-2026-02-09-2 |
| VCID-fybd-zwbt-23ad | security update |
CVE-2015-0294
|
| VCID-gnaf-m1ea-j7g2 | security update |
CVE-2015-8313
|
| VCID-gy9e-81rw-pug2 | GnuTLS: Null pointer dereference in MD_UPDATE |
CVE-2021-4209
|
| VCID-hycu-7x87-jkcf | gnutls: Heap corruption when generating key ID for ECC (GNUTLS-SA-2014-5) |
CVE-2014-8564
|
| VCID-jxjc-vjdc-1yfj | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2023-0361
|
| VCID-k31b-6m7s-pffq | A null pointer dereference in GnuTLS might allow attackers to cause a Denial of Service condition. |
CVE-2017-7507
|
| VCID-k5vv-ts4z-j7g5 | gnutls: Use after free in client_send_params in lib/ext/pre_shared_key.c |
CVE-2021-20232
|
| VCID-m31f-a3pn-yyb4 | Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. |
CVE-2017-5335
|
| VCID-mtvm-zj2z-m7gf | Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. |
CVE-2017-5336
|
| VCID-n2bt-m936-7kcr | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2014-3465
|
| VCID-nce1-q8wc-s3ae | Multiple vulnerabilities have been fixed in GnuTLS, the worst of which can cause Denial of Service |
CVE-2015-3308
|
| VCID-p6yt-pz69-xkd8 | security update |
CVE-2014-3466
|
| VCID-pe4z-zett-mbff | gnutls: gnutls does not perform date/time checks on CA certificates |
CVE-2014-8155
|
| VCID-pf5n-65mk-2ff3 | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2025-32990
GNUTLS-SA-2025-07-08-3 |
| VCID-q3g5-4xaf-hudf | gnutls: "Just in Time" PRIME + PROBE cache-based side channel attack can lead to plaintext recovery |
CVE-2018-10846
|
| VCID-qp8x-339r-pbhe | gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification |
CVE-2018-16868
|
| VCID-qtsh-kn2d-h7cr | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2024-28835
GNUTLS-SA-2024-01-23 |
| VCID-qup9-qy11-fqhe | Multiple vulnerabilities have been found in mbed TLS, the worst of which could lead to the remote execution of arbitrary code. |
CVE-2015-7575
|
| VCID-r531-qbtt-akgf | Multiple vulnerabilities have been found in GnuTLS, the worst of which could result in a Denial of Service condition. |
CVE-2019-3836
|
| VCID-sp9u-9wwg-b7e9 | A flaw was found in GnuTLS, possibly allowing a Denial of Service condition. |
CVE-2020-24659
GNUTLS-SA-2020-09-04 |
| VCID-styg-c5gm-kqgb | gnutls: incorrect handling of V1 intermediate certificates |
CVE-2009-5138
|
| VCID-t6s4-uw76-7kf9 | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2025-32989
GNUTLS-SA-2025-07-08-1 |
| VCID-tbbc-ga1r-nfah | certificate verification flaw |
CVE-2014-1959
|
| VCID-uc8j-r79v-n7ck | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2025-32988
GNUTLS-SA-2025-07-08-2 |
| VCID-uws5-j79f-cbar | gnutls: Use after free in client key_share extension |
CVE-2021-20231
GNUTLS-SA-2021-03-10 |
| VCID-vz27-wyaf-tkcr | gnutls: HMAC-SHA-384 vulnerable to Lucky thirteen attack due to use of wrong constant |
CVE-2018-10845
|
| VCID-w7f6-5b6h-8kh4 | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to a denial of service. |
CVE-2024-0567
|
| VCID-wqyp-93bk-vbh2 | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2025-6395
GNUTLS-SA-2025-07-08-4 |
| VCID-wukx-qzcx-8qfv | gnutls: DTLS plaintext recovery attack |
CVE-2012-0390
|
| VCID-x5jd-qddc-eudq | Multiple vulnerabilities have been discovered in GnuTLS, the worst of which could lead to arbitrary code execution. |
CVE-2024-12243
GNUTLS-SA-2025-02-07 |
| VCID-xap5-djda-2uem | Multiple vulnerabilities have been found in Oracle JRE/JDK, allowing both local and remote attackers to compromise various Java components. |
CVE-2014-3566
|
| VCID-y71t-sfb1-w3gw | Multiple vulnerabilities have been found in GnuTLS, the worst of which may allow execution of arbitrary code. |
CVE-2017-5334
|
| VCID-zjx8-ydmt-juf3 | gnutls: HMAC-SHA-256 vulnerable to Lucky thirteen attack due to not enough dummy function calls |
CVE-2018-10844
|
| VCID-zynz-y95c-s3fs | gnutls: dane_query_tlsa() CVE-2013-4466 fix off-by-one |
CVE-2013-4487
|